The IT Stories

The Good, the Bad and the Ugly

  • Notes from the field: VMware Access Roles and RBAC bug

    On recent projects we where configuring RBAC roles in VMware Access Cloud and stumbled across something annoying which turned out to be a bug. The issue is that when you assign the RBAC roles through super admin, read only admin and directory admin that once added you can’t delete or re-add the same group, it…

  • Notes from the lab: VMware UAG 2106 and Admin SAML

    VMware introduced SAML login capabilities for the admin facing side of UAG with version 2106. See the following article: Release Notes for VMware Unified Access Gateway 2106 This quick home lab blog shows how easy it is and how to integrate this with VMware Workspace ONE Access as your entry point. First things first, before…

  • Notes from the field: VMware UAG and Citrix ADC scenario’s

    On a recent project we were testing some scenario’s for the usage of VMware Blast BEAT through Citrix ADC. For some more information regarding Blast see the following article: VMware Blast Extreme Optimization Guide | VMware Normally you would see that the Citrix ADC setup is an SSL-BRIDGE vserver with accompanying UDP vserver on the…

  • Notes from the lab: VMware vCenter 7u2 ADFS changes

    When vCenter 7 introduced ADFS integration I jumped on the configuration part in my lab and set it up with the necessary OAUTH integrations: Now with vCenter 7u2 there are some changes when you have it in place and are upgrading: The trust store is changed to VECS and you need to change/add that in…

  • Notes from the lab: Citrix ADC and VMware ESX 7u1/7u2

    First things first. Citrix ADC at this time isn’t supporting VMware ESX 7.0.1 according to the following article: Support matrix and usage guidelines (citrix.com) This is something that obviously will get supported in due time. But for the people who are running it just as I am in the lab you would see issues like…

  • Notes from the field: VMware Horizon sessions disconnecting after syslog changes on UAG

    On a recent project where we have VMware Horizon 7.13 and UAG 20.09 appliances for the external connections some strange behavior was observed when putting in the syslog URL entries. After adding or removing entries here and saving the settings all the connections through the UAG will get terminated. Finding this behavior strange as to…

  • Notes from the lab: Bye Bye VMware View Composer

    I was upgrading my lab to VMware Horizon 2012 and yes shame on me I still had an composer in my setup. It was already mentioned that VMware Composer is deprecated from the 2006 release but now in 2012 it will block your upgrade when you still have it enabled. Only after disabling composer on…

  • Notes from the field: Citrix StoreFront forcing connections through Citrix Gateway

    On a recent customer project there was the need to migrate off of VDA TLS encryption and migrate the connections from StoreFront to Citrix Gateway. The customer previously had StoreFront direct connections and used the VDA TLS encryption setup to provide a TLS encrypted session to the desktop or applications. The VDA TLS encryption setup…

  • Notes from the field: VMware Horizon Instant Clone and Imprivata OneSign

    On a recent project consisting of an VMware Horizon instant clone setup and Imprivata OneSign in the desktop for SSO capabilities I’ve encountered some strange timing issues. Normal logins through the horizon client via connection server would be ok with the OneSign agent online, logins through the UAG without TrueSSO would also be okay. (so…

  • Notes from the field: Citrix FAS request not supported

    On a recent Citrix FAS deployment I’ve encountered the following error: “Request not supported” when logging in to a published application or desktop. Article https://support.citrix.com/article/CTX218941 explains that re-enrollment of the domain controller authentication template or another custom template for Kerberos usage should resolve the error. A little bit of a background on the environment, an…

Archives